We are seeking a Cybersecurity Architect to join a lean and highly collaborative cybersecurity team. This role will be responsible for defining, designing, and driving the implementation of security architecture across cloud and on-premises environments, ensuring security controls are effective, scalable, and aligned with business objectives.

Key Responsibilities:

Security Architecture & Strategy

• Develop and maintain enterprise security architecture standards, principles, and roadmaps.
• Design and implement layered security controls across cloud, infrastructure, endpoint, and identity environments.
• Lead architecture initiatives covering identity and access management, privileged access management, cloud security, endpoint protection, vulnerability management, and network security.
• Establish secure architecture patterns and best practices to support ongoing technology transformation initiatives.
• Embed security-by-design principles across technology platforms and business applications.

Engineering & Delivery

• Provide technical leadership and architecture oversight for cybersecurity projects and technology implementations.
• Review and validate solution designs to ensure alignment with security requirements and enterprise standards.
• Lead or support implementation of strategic security capabilities including SIEM, DLP, EDR/XDR, network segmentation, and cloud security initiatives.
• Develop technical standards, architecture documentation, and operational playbooks to support sustainable operations.
• Partner closely with project teams to ensure successful deployment and operationalization of security solutions.

Security Operations & Risk Management

• Monitor evolving threat landscapes and assess potential impacts to the organization’s security posture.
• Conduct threat modelling exercises for new technologies, applications, and infrastructure changes.
• Support incident investigations and provide senior-level technical expertise during major security events.
• Drive improvements in vulnerability management, remediation processes, and security monitoring capabilities.
• Support penetration testing, red team exercises, and security assessments.

Governance & Compliance

• Ensure security architectures align with applicable regulatory requirements, industry standards, and internal policies.
• Translate audit findings, risk assessments, and compliance requirements into actionable technical remediation plans.
• Work closely with risk, audit, and compliance stakeholders to strengthen security governance and control effectiveness.
• Contribute to the development and maintenance of security standards, procedures, and architectural guidelines.

Requirements:

• 7-15 years of cybersecurity experience with a strong background in security engineering and architecture.
• Experience designing and implementing security controls across hybrid cloud and enterprise infrastructure environments.
• Background within financial services, investment management, banking, or other regulated industries is advantageous.
• Demonstrated experience leading complex cybersecurity initiatives from design through implementation.
• Strong stakeholder management and communication skills with the ability to influence both technical and business audiences.

Technical Expertise

• Strong knowledge of Microsoft security technologies, including Microsoft Defender, Entra ID, and broader Microsoft security capabilities.
• Hands-on experience with Azure cloud security, identity security, and Zero Trust architecture principles.
• Familiarity with SIEM, endpoint security, vulnerability management, security operations, and infrastructure security technologies.
• Strong understanding of enterprise network security, cloud security architecture, and modern security engineering practices.

Untuk memohon:

If you’re interested to apply or find out more, please share across your CV or reach out to Chen Yi at cy@kerryconsulting.com for a discussion. Due to anticipated high volume of applications, we regret to inform that only shortlisted candidates will be notified.

Reg: R1876389

Lic: 16S8060